Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2024 Exécuté par 3040-1 (administrateur) sur PC-MIKA (Dell Inc. OptiPlex 3040) (19-10-2024 20:56:44) Exécuté depuis C:\Users\3040-1\Desktop\FRST64.exe Profils chargés: 3040-1 Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.5011 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2> (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserProcess.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.DCF.UA.Bradbury.API.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.CoreServices.Client.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\AnalyticsSubAgent\Dell.TechHub.Analytics.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <13> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\3040-1\AppData\Local\Microsoft\OneDrive\24.186.0915.0004\Microsoft.SharePoint.exe (explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (services.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_e66412af875019f8\WMIRegistrationService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319760 2021-05-21] (Intel Corporation -> Intel Corporation) HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [61370712 2020-01-21] (Discord Inc. -> Discord Inc.) HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 HKU\S-1-5-21-3299500577-2757214874-4124028046-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4406632 2024-09-17] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3299500577-2757214874-4124028046-1001\...\Run: [Discord] => C:\Users\3040-1\AppData\Local\Discord\Update.exe [1525016 2023-04-26] (Discord Inc. -> GitHub) HKU\S-1-5-21-3299500577-2757214874-4124028046-1001\...\Run: [Microsoft.Lists] => C:\Users\3040-1\AppData\Local\Microsoft\OneDrive\24.186.0915.0004\Microsoft.SharePoint.exe [1025568 2024-10-16] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3299500577-2757214874-4124028046-1001\...\Run: [MicrosoftEdgeAutoLaunch_35565754C12A6485CC9012415DB72945] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3794984 2024-10-10] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\129.0.6668.103\Installer\chrmstp.exe [2024-10-15] (Google LLC -> Google LLC) ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {F5619F38-578E-47CD-A1F8-794BF4C09658} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.) Task: {F6274A36-3104-401B-8CED-F4BDA03C5843} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{D1357E38-61D7-4E80-9671-98B411B7A1DE} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-10-14] (Google LLC -> Google LLC) Task: {9EEB4E3D-A86B-4286-BD74-2EA1B2725945} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28616920 2024-10-14] (Microsoft Corporation -> Microsoft Corporation) Task: {B58E6743-62F3-4693-AABD-74F9C60D440A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28616920 2024-10-14] (Microsoft Corporation -> Microsoft Corporation) Task: {177CDFCE-05DD-44CB-AA0F-F95536F84CC4} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [223328 2024-10-19] (Microsoft Corporation -> Microsoft Corporation) Task: {73650F6D-2703-411B-8047-C1206E9061B9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [223328 2024-10-19] (Microsoft Corporation -> Microsoft Corporation) Task: {B1755CCF-0445-4061-A05B-D1FEB2768425} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4465608 2024-09-28] (Microsoft Corporation -> Microsoft Corporation) Task: {20BD7410-BC7D-4C29-AB3F-430ADB33CACF} - System32\Tasks\Microsoft\Windows\Clip\ClipESU => C:\WINDOWS\system32\clipesu.exe [221680 2024-10-09] (Microsoft Windows -> Microsoft Corporation) Task: {28130215-D6C0-4BF3-9EBC-7DBAAF7F744A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {96755399-F9E2-4D2A-B40A-077EA9828D8A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C7E85B87-0E25-4C7A-BA2C-37CFBE705387} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {1387F34E-9220-49D2-8423-11DAA9F0F456} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8F39D367-E46F-4DF4-8CAC-5210A7F31C68} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [672320 2024-10-14] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus). Task: {70AC341E-2418-40C8-9FFE-4681838CAE4A} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3299500577-2757214874-4124028046-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [672320 2024-10-14] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus). Task: {A3E3B654-4099-478D-BBCB-8571A97537DB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34368 2024-10-14] (Mozilla Corporation -> Mozilla Foundation) Task: {6EA33E6F-A7E2-4B72-BA6D-9A41F1754546} - System32\Tasks\Opera scheduled assistant Autoupdate 1651520207 => C:\Users\3040-1\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\3040-1\AppData\Local\Programs\Opera\assistant" $(Arg0) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{3456cc5f-9b01-4323-bf1c-4b28ba65f477}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{70d2b328-02eb-4814-af68-f5ef250ac79a}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{be7413a6-b5f0-4f7c-bc45-8dfc843c8b76}: [DhcpNameServer] 192.168.0.254 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\3040-1\AppData\Local\Microsoft\Edge\User Data\Default [2024-10-19] Edge Extension: (Google Docs hors connexion) - C:\Users\3040-1\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-08] Edge Extension: (Edge relevant text changes) - C:\Users\3040-1\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24] FireFox: ======== FF DefaultProfile: nz4tiyp4.default FF ProfilePath: C:\Users\3040-1\AppData\Roaming\Mozilla\Firefox\Profiles\nz4tiyp4.default [2024-01-27] FF ProfilePath: C:\Users\3040-1\AppData\Roaming\Mozilla\Firefox\Profiles\5hphsq15.default-release [2024-10-19] FF Notifications: Mozilla\Firefox\Profiles\5hphsq15.default-release -> hxxps://www.instagram.com; hxxps://fr.tukif.show FF Extension: (uBlock Origin) - C:\Users\3040-1\AppData\Roaming\Mozilla\Firefox\Profiles\5hphsq15.default-release\Extensions\uBlock0@raymondhill.net.xpi [2024-10-03] FF Extension: (Pink Floyd theme) - C:\Users\3040-1\AppData\Roaming\Mozilla\Firefox\Profiles\5hphsq15.default-release\Extensions\{7b31ee52-130f-4d71-b1ca-83121bdf881f}.xpi [2024-03-03] FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-08-29] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\3040-1\AppData\Local\Google\Chrome\User Data\Default [2024-10-19] CHR Notifications: Default -> hxxps://www.instagram.com CHR Extension: (Just Black) - C:\Users\3040-1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2023-08-10] CHR Extension: (uBlock Origin) - C:\Users\3040-1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-09-27] CHR Extension: (Google Docs hors connexion) - C:\Users\3040-1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-10] CHR Extension: (Office Online - Copier et coller) - C:\Users\3040-1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2023-02-18] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\3040-1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Profile: C:\Users\3040-1\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-01-27] CHR Profile: C:\Users\3040-1\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-01-30] CHR Extension: (Google Docs hors connexion) - C:\Users\3040-1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-26] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\3040-1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-24] CHR Profile: C:\Users\3040-1\AppData\Local\Google\Chrome\User Data\System Profile [2024-01-27] Opera: ======= OPR Profile: C:\Users\3040-1\AppData\Roaming\Opera Software\Opera Stable [2024-01-27] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}&tpsf=openc OPR Extension: (Rich Hints Agent) - C:\Users\3040-1\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-07-26] OPR Extension: (Opera Crypto Wallet) - C:\Users\3040-1\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-07-26] OPR Extension: (Amazon Assistant Promotion) - C:\Users\3040-1\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-05-10] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8903520 2022-02-05] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13861072 2024-10-14] (Microsoft Corporation -> Microsoft Corporation) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [458128 2023-12-07] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [159632 2023-12-07] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [481680 2023-12-07] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [49880 2023-12-11] (Dell Inc -> ) R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [159664 2023-12-22] (Dell Technologies Inc. -> Dell) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-06-30] (EasyAntiCheat Oy -> Epic Games, Inc) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-16] (NVIDIA Corporation -> NVIDIA Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [530488 2024-09-13] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [159072 2024-01-17] (Dell Inc -> Dell Inc.) R2 tmInstall; C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.EXE [295592 2024-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé] R3 DellInstrumentation; C:\WINDOWS\System32\drivers\DellInstrumentation.sys [46640 2023-12-06] (Microsoft Windows Hardware Compatibility Publisher -> Dell) S3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2024-05-07] (Logitech Inc -> Logitech) R3 MpKsla1c74189; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{93AB08BB-CE3C-45D5-A2AE-BB0BFDBD9E6C}\MpKslDrv.sys [267552 2024-10-19] (Microsoft Windows -> Microsoft Corporation) R3 RtlWlanu; C:\WINDOWS\system32\DRIVERS\rtwlanu.sys [8197640 2019-01-23] (NETGEAR TAIWAN CO., LTD -> Realtek Semiconductor Corporation) S3 tmhidusb; C:\WINDOWS\system32\DRIVERS\tmhidusb.sys [568488 2024-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-09-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602392 2024-09-18] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-18] (Microsoft Windows -> Microsoft Corporation) S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation) S4 nvvhci; \SystemRoot\System32\drivers\nvvhci.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-10-19 20:52 - 2024-10-19 20:56 - 000045129 _____ C:\Users\3040-1\Desktop\Addition.txt 2024-10-19 20:51 - 2024-10-19 20:57 - 000022890 _____ C:\Users\3040-1\Desktop\FRST.txt 2024-10-19 20:51 - 2024-10-19 20:57 - 000000000 ____D C:\FRST 2024-10-19 20:49 - 2024-10-19 20:49 - 002397696 _____ (Farbar) C:\Users\3040-1\Desktop\FRST64.exe 2024-10-19 20:15 - 2024-10-19 20:15 - 000347016 _____ C:\Users\3040-1\Downloads\CrucialFRScan (1).exe 2024-10-19 20:11 - 2024-10-19 20:11 - 000347016 _____ C:\Users\3040-1\Downloads\CrucialFRScan.exe 2024-10-19 18:35 - 2024-10-19 18:35 - 000001828 _____ C:\Users\3040-1\Desktop\CrystalDiskInfo.lnk 2024-10-19 18:35 - 2024-10-19 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo 2024-10-19 18:35 - 2024-10-19 18:35 - 000000000 ____D C:\Program Files\CrystalDiskInfo 2024-10-19 18:34 - 2024-10-19 18:34 - 005918840 _____ (Crystal Dew World ) C:\Users\3040-1\Downloads\crystaldiskinfo-windows-9.4.4-33454.exe 2024-10-16 15:50 - 2024-09-16 01:28 - 025312776 _____ C:\WINDOWS\system32\nvidia-pcc.exe 2024-10-16 15:50 - 2024-09-16 01:28 - 002040680 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2024-10-16 15:50 - 2024-09-16 01:28 - 002040680 _____ C:\WINDOWS\system32\vulkaninfo.exe 2024-10-16 15:50 - 2024-09-16 01:28 - 001583976 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2024-10-16 15:50 - 2024-09-16 01:28 - 001583976 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2024-10-16 15:50 - 2024-09-16 01:28 - 001446760 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2024-10-16 15:50 - 2024-09-16 01:28 - 001446760 _____ C:\WINDOWS\system32\vulkan-1.dll 2024-10-16 15:50 - 2024-09-16 01:28 - 001296744 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2024-10-16 15:50 - 2024-09-16 01:28 - 001296744 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2024-10-16 15:50 - 2024-09-16 01:28 - 000477704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2024-10-16 15:50 - 2024-09-16 01:28 - 000374816 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2024-10-16 15:50 - 2024-09-16 01:25 - 001547400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2024-10-16 15:50 - 2024-09-16 01:25 - 001202808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2024-10-16 15:50 - 2024-09-16 01:25 - 001078928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2024-10-16 15:50 - 2024-09-16 01:25 - 000856696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2024-10-16 15:50 - 2024-09-16 01:25 - 000669840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll 2024-10-16 15:50 - 2024-09-16 01:25 - 000505992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll 2024-10-16 15:50 - 2024-09-16 01:24 - 016200352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2024-10-16 15:50 - 2024-09-16 01:24 - 014270096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2024-10-16 15:50 - 2024-09-16 01:24 - 006914168 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2024-10-16 15:50 - 2024-09-16 01:24 - 005348872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll 2024-10-16 15:50 - 2024-09-16 01:24 - 003788432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2024-10-16 15:50 - 2024-09-16 01:24 - 002178696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2024-10-16 15:50 - 2024-09-16 01:24 - 001629296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2024-10-16 15:50 - 2024-09-16 01:24 - 001034248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2024-10-16 15:50 - 2024-09-16 01:24 - 000796792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2024-10-16 15:50 - 2024-09-16 01:24 - 000461984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2024-10-16 15:50 - 2024-09-16 01:24 - 000131656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2024-10-16 15:50 - 2024-09-16 01:23 - 005910024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2024-10-16 15:50 - 2024-09-16 01:23 - 000853136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2024-10-16 15:50 - 2024-09-16 01:22 - 007133144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2024-10-16 15:50 - 2024-09-16 01:22 - 006212848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2024-10-16 15:50 - 2024-09-16 00:53 - 000127247 _____ C:\WINDOWS\system32\nvinfo.pb 2024-10-11 23:09 - 2024-10-11 23:09 - 004355522 _____ ( ) C:\Users\3040-1\Downloads\Setup Project64 3.0.1-5664-2df3434.exe 2024-10-10 20:59 - 2024-10-10 20:59 - 000285931 _____ C:\Users\3040-1\Downloads\f4_lucasbe_add_on_pack.zip 2024-10-10 20:52 - 2024-10-10 20:52 - 051756377 _____ C:\Users\3040-1\Downloads\fillman86_lmp_enis2_2023.zip 2024-10-10 20:51 - 2024-10-10 20:51 - 015452556 _____ C:\Users\3040-1\Downloads\F4_I5Engine.zip 2024-10-10 17:59 - 2024-10-15 20:39 - 000000000 ____D C:\Program Files\Mozilla Firefox 2024-10-09 20:49 - 2024-10-09 20:49 - 025745480 _____ C:\Users\3040-1\Downloads\autobello_fkartc_alpha4.zip 2024-10-09 16:44 - 2024-10-09 16:44 - 000000000 ___HD C:\$WinREAgent 2024-10-03 20:51 - 2024-10-03 20:51 - 000000000 ____D C:\Users\3040-1\AppData\Local\Rennsport 2024-10-03 20:36 - 2024-10-03 20:36 - 000000223 _____ C:\Users\3040-1\Desktop\RENNSPORT Playtest.url ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-10-19 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-10-19 20:42 - 2020-01-21 10:16 - 000000000 ____D C:\Program Files (x86)\Steam 2024-10-19 20:09 - 2021-02-06 00:17 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-10-19 18:40 - 2020-01-21 09:33 - 000000000 ____D C:\Users\3040-1\AppData\Local\Packages 2024-10-19 18:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-10-19 18:37 - 2022-02-09 14:37 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-10-19 18:28 - 2021-02-06 18:55 - 001774404 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-10-19 18:28 - 2019-12-07 16:50 - 000792816 _____ C:\WINDOWS\system32\perfh00C.dat 2024-10-19 18:28 - 2019-12-07 16:50 - 000150480 _____ C:\WINDOWS\system32\perfc00C.dat 2024-10-19 18:28 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2024-10-19 18:27 - 2021-09-03 19:08 - 000000000 ____D C:\Users\3040-1\AppData\Local\BeamNG.drive 2024-10-19 18:24 - 2021-02-06 00:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-10-19 18:24 - 2021-02-06 00:17 - 000008192 ___SH C:\DumpStack.log.tmp 2024-10-19 18:24 - 2020-01-21 16:03 - 000000000 ____D C:\ProgramData\NVIDIA 2024-10-19 18:23 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2024-10-19 17:54 - 2020-01-22 17:43 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2024-10-19 17:51 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2024-10-19 17:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat 2024-10-17 20:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2024-10-17 20:07 - 2023-10-08 10:36 - 000000000 ____D C:\Program Files\RUXIM 2024-10-16 19:14 - 2020-01-21 16:23 - 000000000 ____D C:\Users\3040-1\AppData\Local\D3DSCache 2024-10-16 16:53 - 2021-12-18 00:30 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-10-16 15:54 - 2024-07-30 11:18 - 000000000 ____D C:\Users\3040-1\AppData\Local\MobiGame 2024-10-16 15:54 - 2021-02-06 00:19 - 000000000 ____D C:\Users\3040-1 2024-10-16 15:52 - 2022-03-05 16:29 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3299500577-2757214874-4124028046-1001 2024-10-16 15:52 - 2021-02-06 00:24 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3299500577-2757214874-4124028046-1001 2024-10-16 15:52 - 2021-02-06 00:19 - 000002424 _____ C:\Users\3040-1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-10-16 15:51 - 2020-01-21 16:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2024-10-16 15:49 - 2024-07-30 11:24 - 000000000 ____D C:\ProgramData\VirtualBox 2024-10-15 20:42 - 2020-01-21 10:16 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-10-15 20:39 - 2020-01-21 10:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2024-10-14 21:51 - 2022-01-18 21:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2024-10-14 21:51 - 2020-01-21 10:14 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2024-10-13 14:49 - 2020-02-04 19:17 - 000000000 ____D C:\Users\3040-1\AppData\Local\CrashDumps 2024-10-12 10:51 - 2020-06-19 17:52 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-10-10 21:46 - 2023-06-09 22:00 - 000000000 ____D C:\Users\3040-1\AppData\Local\Discord 2024-10-10 21:46 - 2020-01-21 10:17 - 000000000 ____D C:\Users\3040-1\AppData\Roaming\Discord 2024-10-10 17:33 - 2021-02-06 00:24 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-10-10 17:33 - 2021-02-06 00:24 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-10-09 22:53 - 2021-02-06 00:17 - 000434488 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-10-09 22:51 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2024-10-09 22:51 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-10-09 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2024-10-09 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2024-10-09 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2024-10-09 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2024-10-09 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-10-09 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2024-10-09 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2024-10-09 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-10-09 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2024-10-09 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-10-09 16:59 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-10-09 16:54 - 2021-02-06 00:17 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2024-10-09 16:42 - 2020-01-21 09:58 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-10-09 16:41 - 2020-01-21 09:58 - 201324920 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2024-10-08 21:04 - 2022-10-11 19:43 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2024-10-03 20:36 - 2020-05-28 17:54 - 000000000 ____D C:\Users\3040-1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2024-10-02 15:28 - 2021-06-11 16:18 - 000000000 ____D C:\Users\3040-1\AppData\Local\ElevatedDiagnostics 2024-09-30 21:36 - 2020-02-01 16:09 - 000000000 ____D C:\Users\3040-1\AppData\Roaming\vlc 2024-09-30 21:35 - 2023-04-16 15:11 - 000000000 ____D C:\Users\3040-1\AppData\Roaming\dvdcss 2024-09-28 13:20 - 2024-01-12 21:48 - 002819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2024-09-28 13:20 - 2024-01-12 21:48 - 000775720 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2024-09-28 13:20 - 2024-01-12 21:48 - 000243264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2024-09-28 13:20 - 2024-01-12 21:48 - 000210472 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll 2024-09-28 13:20 - 2024-01-12 21:48 - 000153152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2024-09-28 13:20 - 2024-01-12 21:48 - 000124480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe 2024-09-28 13:20 - 2024-01-12 21:48 - 000075304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe 2024-09-19 20:39 - 2022-09-12 18:26 - 000000000 ____D C:\Users\3040-1\AppData\Roaming\com.adobe.dunamis ==================== Fichiers à la racine de certains dossiers ======== 2022-03-04 19:23 - 2022-03-04 19:32 - 000000098 _____ () C:\Users\3040-1\AppData\Roaming\LauncherSettings_live.cfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================